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Amendments to the Claims; 



This listing of claims will replace dl prior versions^ and listings, of claims in the 
application: 



Listing of Claims ; 

1 ■ (Cmrrently Amended) A validation protocol for determining authenticity of a printer 



consumable, said protocol including the steps of: 

providing a printer containing a trusted authentication chip and a printer consumable 
containing an xmtrusted authentication chip; 

generating a secret random number and calculating a signature for the random 
number using a signature function, in the trusted authentication chip, the trusted 
authentication chip having a random function to produce random numbers &om a seed, and 
the fimction advances after each successful validation, so that the next random nxmiber is 
produced from a new seed; 

encrypting the random nimiber and the signature by a symmetric encryption function 
using a first key, in the trusted authentication chip; 

passing the encrypted random ninnber and signature from the trusted authentication 
chip to the untrusted authentication chip; 

decrypting the encrypted random number and signature with a symmetric decryption 
function using the first key, in the untrusted authentication chip; 

calculating a signature for the decrypted random number using the signature 
function, in the untrusted authentication chip; 

comparing the signature calculated in the untrusted authentication chip with the 
signature decrypted; 

in the event that the two signamres match, encrypting the decrypted random number 
by the synmietric encryption function using a second key and returning the encrypted 
random nimiber to the trusted authentication chip; 

encrypting the random number by the symmetric encryption function using the 
second key, in the trusted authentication chip; 

comparing the two random nimibers encrypted using the second key, in the trusted 
authentication chip; 

in the event that the two random nimibers encrypted using the second key match, 
considering the untrusted authentication chip to be valid and authorizing use of the printer 
consumable; 
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Otherwise considering the iiatrusted authentication chip to be invalid and denying use 
of the printer consumable^ 

wherein the random number, the first key and the second key are randomly generated 
in a non-determimstic manner using physically random phenomena , 

2. (Original) The protocol according to claim 1 , where the first and second keys are 
held in both the trusted and untrusted authentication chips, and are kept secret. 

3. (Cancelled) 

4. (Original) The protocol according to claim 1 » where the symmetric decrypt function 
is held only in the untrusted chip. 

5. (Ori^nal) The protocol according to claim 1, v^ere the signature function generates 
digital signatures of 160 bits. 

6. (Cancelled) 

7. (Original) The protocol according to claim 6, where the time taken to return an 
indication the chip is invalid is the same for all bad inputs, and the time taken to return the 
random number encrypted with the second key is the same for all good inputs. 

8. (Original) The protocol according to claim 1 , where a test function is held only in the 
trusted chip to advance the random number if the untrusted chip is valid; otherwise it returns 
an indication the chip is invalid. 

9. (Original) The protocol according to claim 8, where the time taken to return an 
indication the chip is invalid is the same for all bad inputs, and the time taken to return an 
indication the chip is valid is the same for all good inputs, 

10. (Original) The protocol according to claim 1 » where it is used to deteraiine the 
physical presence of a valid authentication chip. 



PAGE4/8* RCVD AT 2/6/2007 6:37:33 PM [Eastern Standard Timep SVR:USPT0-EFXRF-1/11 * DN1S:2738300 * CSID:0295557762 * DURATION (nim-ss):0240 



07'.FEB.2007 11:06 0295557762 



SBR 



#0150 P. 005 /008 



ApplnNo. 09/50S05J 

Amdt. D9tc4: Jsnuary 24. 2007 

Response to Office Action of December II, 2006 



4 



1 1 . (Currently Amended) A validation system for perfonning the method according to 
claim 1, where the system includes a printer containing a trusted authentication chip and a 
printer consumable containing an untrusted authentication chip; where the trusted 
authentication chip includes a random number generator, a symmetric encryption function 
and two keys for the function, a signature function and a test function; and the xmtrusted 
authentication chip includes a symmetric etxcryption and decryption function and two keys 
for these functions, a signature function, and a prove function to decrypt a random number 
and signature encrypted using the first key by the trusted authentication chip, and to 
calculate another signature from the decrypted random number, for comparison with the 
decrypted signature, and in the event that the comparison is successful to encrypt the random 
nimiber with the second key and send the encrypted random number back; the test function 
in the trusted chip then operates to generate an encrypted version of the random number 
using the second key and to compare the encrypted random number with the received 
version to validate the untrusted chip> where the trusted authentication chip contains a 
random function to produce random numbers from a seed, and the function advances after 
each successful validation, so that the next random number will be produced from a new 
seed , and 

wherein the random number, the first key and the second key are randomly generated 
in a non-deteiministic manner using phvsicallv random phenomena , 

12. (Original) A validation system according to claim 1 1, where the remainder of the 
system is software* hardware or a combination of both, but the trusted chip is a physical 
authentication chip. 

13. (Original) A validation system according to claim 1 1, where both chips have the 
same internal structure. 

1 4. (Original) A validation system according to claim 1 1 , where the first and second keys 
are kept secret. 



15. 



(Cancelled) 



16. (Original) A validation system according to claim 1 1 > where the signature function 
generates digital signatures of 160 bits. 
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17. (Original) A vaJidation system according to claim 1 1, where the prove function 
returns an indication the chip is invalid for all bad inputs and the time taken to do this is the 
same for all bad inputs, and the time taken to return the random number encrypted with the 
second key is the same for all good inputs. 

1 8- (Original) A validation system according to claim 1 1, where the test function 
advances the random number if the untrusted chip is validated. 

1 9. (Original) A validation system according to claim 1 1 , where the time taken for the 
test function to return an indication the chip not validated is the same for all bad inputs^ and 
the time taken to return an indication that the chip is validated is the same for all good 
inputs- 

20. (Original) A validation system according to claim 1 1 , where it is used to determine 
the physical presence of a valid authentication chip. 
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